Hey guys, so after reading about the supposed password protected section of Buck's Fishing and Camping website, I decided to do a little bit of digging and researching myself on the sites that are connected to the restaurants connected to James Alefantis.
Playing around with both websites "bucksfishingandcamping.com" and "www.cometpingpong.com" on pentest-tools.com, the scan is coming back with over 1,100 hidden directories on each.
Now obviously some relate to squarespace (the host of the websites) and some relate to the javascript coding of the websites, but then there's some that are just named too odd to be related to either components. I may be wrong but here's some of them:
/benefits/
/girl/
/house/
/memberlist/
/training/
/asia
/forums
/guests
/iraq.bat
/jacob
/joinrequests
/kontakt.bat
/military
/movies.bat
Here's the problem for me. They're either deemed "Forbidden" or "Too Many Requests". I don't know enough internet smarts to get through them.
Whatever the case may be, /iraq.bat and /military sound really fishy.
Oh and if anybody has any recommendations where I can upload the PDF for all to see, let me know. The last thing I need is for people calling this fake.
view the rest of the comments →
evilwhitemale ago
Another way to find things like this, sometimes even deleted, is to use a wildcard search on archive.org:
https://web.archive.org/web//https://www.cometpingpong.com/
dicedtomatoes55-2 ago
I've been using that. I even tried inserting a few of the directory links onto the tail end of the regular url but nothing pops up.
evilwhitemale ago
My wildcard got turned into style there but there should be a star at the end, after the / - it lists all the files the archive has for the given domain.
dicedtomatoes55-2 ago
You mean like this? https://web.archive.org/web/ * /https://www.cometpingpong.com/
All I'm seeing is the screenshots, no files.
evilwhitemale ago
Yes, just without the space